ModSecurity

ModSecurity is a plugin for Apache web servers which functions as a web app layer firewall. It's employed to stop attacks toward script-driven Internet sites by using security rules which contain certain expressions. In this way, the firewall can stop hacking and spamming attempts and shield even websites which aren't updated on a regular basis. For instance, a number of unsuccessful login attempts to a script administrator area or attempts to execute a particular file with the purpose to get access to the script will trigger specific rules, so ModSecurity will block these activities the moment it identifies them. The firewall is incredibly efficient since it tracks the entire HTTP traffic to an Internet site in real time without slowing it down, so it will be able to stop an attack before any damage is done. It furthermore maintains an exceptionally thorough log of all attack attempts which contains more information than standard Apache logs, so you could later check out the data and take further measures to improve the security of your Internet sites if required.

ModSecurity in Web Hosting

ModSecurity is provided with all web hosting web servers, so when you decide to host your websites with our firm, they will be protected against a wide array of attacks. The firewall is enabled by default for all domains and subdomains, so there will be nothing you shall need to do on your end. You will be able to stop ModSecurity for any site if necessary, or to enable a detection mode, so all activity shall be recorded, but the firewall won't take any real action. You'll be able to view comprehensive logs using your Hepsia Control Panel including the IP where the attack came from, what the attacker wished to do and how ModSecurity handled the threat. As we take the security of our clients' websites very seriously, we employ a group of commercial rules which we take from one of the top companies that maintain this type of rules. Our administrators also add custom rules to make sure that your websites shall be protected against as many threats as possible.

ModSecurity in Semi-dedicated Hosting

All semi-dedicated hosting solutions which we offer come with ModSecurity and because the firewall is turned on by default, any Internet site which you build under a domain or a subdomain shall be secured right away. An independent section inside the Hepsia CP that comes with the semi-dedicated accounts is dedicated to ModSecurity and it will allow you to stop and start the firewall for any site or activate a detection mode. With the last mentioned, ModSecurity will not take any action, but it'll still identify possible attacks and shall keep all data inside a log as if it were 100% active. The logs can be found inside the very same section of the Control Panel and they feature details about the IP where an attack originated from, what its nature was, what rule ModSecurity applies to identify and stop it, and so forth. The security rules we employ on our servers are a mix between commercial ones from a security firm and custom ones made by our system admins. Therefore, we provide increased security for your web apps as we can protect them from attacks before security companies release updates for new threats.

ModSecurity in VPS Hosting

ModSecurity is included with all Hepsia-based virtual private servers that we offer and it'll be turned on automatically for any new domain or subdomain that you include on the server. In this way, any web app which you install shall be secured right away without doing anything personally on your end. The firewall could be managed through the section of the Control Panel that bears the same name. This is the place whereyou can switch off ModSecurity or activate its passive mode, so it will not take any action toward threats, but shall still keep a comprehensive log. The recorded data is available in the same area as well and you shall be able to see what IPs any attacks originated from so that you can stop them, what the nature of the attempted attacks was and based on what security rules ModSecurity reacted. The rules we employ on our servers are a mixture between commercial ones we obtain from a security firm and custom ones that are added by our staff to enhance the security of any web apps hosted on our end.

ModSecurity in Dedicated Web Hosting

If you decide to host your Internet sites on a dedicated server with the Hepsia CP, your web programs will be protected right from the start because ModSecurity is supplied with all Hepsia-based solutions. You will be able to manage the firewall effortlessly and if necessary, you'll be able to turn it off or activate its passive mode when it'll only maintain a log of what is taking place without taking any action to prevent potential attacks. The logs that you will find within the same section of the Control Panel are quite detailed and contain information about the attacker IP address, what site and file were attacked and in what ways, what rule the firewall used to stop the intrusion, and so forth. This data will allow you to take measures and increase the protection of your Internet sites even more. To be on the safe side, we use not just commercial rules, but also custom-made ones which our administrators add when they detect attacks which have not yet been included in the commercial pack.